Regulatory Compliance Lead

About the Job

We are looking for a Regulatory Compliance Lead to support the next phase of growth of a licensed Payment Service Provider within Flip Group. This role is critical in ensuring strong, practical, and business-enabling regulatory compliance as the company expands through strategic partnerships and new business models, including offline acquiring and international collaboration.

What You'll Do:

1) Regulatory advisory for new business & strategic partnerships

• Regulatory assessment & structuring: Provide clear regulatory opinions for new initiatives (e.g., company collaboration, offline acquiring/device-based acquiring), including activity classification, licensing implications, and required controls.
• Product & partnership compliance by design: Embed compliance requirements into product flows, SOPs, and partner operating models (KYC/onboarding, settlement, dispute handling, chargeback/refund logic, fees/MDR transparency).
• Regulatory readiness for expansion: Prepare compliance go-live checklist for new launches (policies, risk assessment, reporting design, customer comms, incident response readiness).
• Cross-border / third-party risk view: Coordinate compliance requirements for any cross-border elements, outsourcing/third-party arrangements, and interconnection dependencies (with Legal, Risk, InfoSec).

2) Core regulatory compliance operations excellence

• Regulatory reporting governance: Own timeliness, completeness, and accuracy of recurring regulatory submissions; maintain an evidence-based audit trail and reporting calendar.
• Licensing & obligation management: Maintain a single source of truth for licenses, regulatory obligations, commitments, and correspondence; track actions until closure.
• Policy & SOP development: Draft/update compliance policies and SOPs aligned with Flip Group standards and risk profile (including approval workflows, product sign-offs, exceptions handling).
• Compliance monitoring & testing: Design and run practical monitoring/testing (sampling, thematic reviews, control checks) and drive remediation with owners and deadlines.
• Regulatory communications: Support regulator engagements (data requests, meetings, exams/on-site visits), ensure responses are consistent, factual, and delivered on time.

3) Risk management, AML/CFT coordination, consumer protection & PDP controls

• AML/CFT coordination (with Group AML): Ensure the business changes do not weaken KYC, sanctions screening, transaction monitoring, suspicious reporting workflows, or recordkeeping.
• Consumer protection: Ensure fair treatmenttransparent fees, clear T&Cs, effective complaint handling, and measurable resolution SLAs; ensure customer communications meet regulatory expectations.
• Personal Data Protection (PDP): Work with Legal/InfoSec/Product to ensure lawful basis/consent flows, data minimization, retention schedule, access controls, and incident handling are in place for systems and offline devices.
• Issue & incident management: Lead compliance incident triage (regulatory breaches, customer-impact issues), root cause analysis, corrective/preventive actions, and management reporting.

4) Stakeholder management, training, and compliance culture

• Training & awareness: Deliver targeted training for teams (ops/product/sales/offline acquisition) tailored to offline acquiring and partnership risks.
• Decision support & escalation: Provide crisp options and risk-based recommendations to leadership; escalate material issues early with practical mitigation proposals.
• Team leadership (as applicable): Act as a lead who can guide junior resources or coordinate a small pod/project team across functions.

What We're Looking For:

• Bachelor's degree in Law, Accounting, Finance, or related field.
• 68 years in regulatory compliance within fintech/payments/e-money/acquiring, with demonstrated ownership of regulator-facing deliverables and product advisory.
• Strong familiarity with Bank Indonesia payment system regulations and regulatory expectations for PSP/PJP operations; understanding of AML/CFT obligations and consumer protection principles; working knowledge of PDP requirements.
• Fluent Bahasa Indonesia and strong English (written and spoken).
• Nice to have: Compliance/AML certifications, experience supporting on-site regulatory exams, familiarity with offline acquiring operations and device ecosystems.

Core skills:

• Strong regulatory writing (memos, regulator letters, responses, policy drafting)
• Structured problem-solving; able to translate rules into workable SOPs/controls
• Stakeholder management with business teams (firm on risk, practical on execution)
• High integrity, confidentiality, and no surprises mindset